Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206995.roa
File: AS206995.roa (raw, json)
Hash identifier: scnIHXIB2U5i7ji9WBEH4hklhhdqR/AJlBaLTYm7JGQ=
Subject key identifier: E0:50:30:1D:BC:75:E4:16:04:D8:38:40:9D:FB:68:BC:4A:2E:90:1E
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 2573934F7BFF4CF0168D265A127E141FB961FEAF
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206995.roa
Signing time: Thu 13 Apr 2023 20:00:14 +0000
ROA not before: Thu 13 Apr 2023 19:55:14 +0000
ROA not after: Thu 11 Apr 2024 20:00:14 +0000
asID: 206995
IP address blocks: 181.214.75.0/24 maxlen: 24
191.96.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:73:93:4f:7b:ff:4c:f0:16:8d:26:5a:12:7e:14:1f:b9:61:fe:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 13 19:55:14 2023 GMT
Not After : Apr 11 20:00:14 2024 GMT
Subject: CN=E050301DBC75E41604D838409DFB68BC4A2E901E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e7:bf:d9:bf:2a:7d:7a:db:29:9a:53:eb:99:
8a:59:c1:d9:0a:9c:e0:69:b7:ac:31:b4:ec:fe:31:
25:0a:88:74:fb:b2:65:e6:d5:2e:7d:4d:53:54:9f:
3f:84:8b:d2:a2:7b:ae:b3:97:f8:fb:8c:17:7e:08:
81:48:59:6a:ba:a7:0e:e6:e3:cb:4a:e8:05:cb:3c:
69:d9:3c:47:f0:56:f6:f6:ff:c9:03:c1:74:5f:0d:
e0:36:c8:dc:24:db:f9:05:2f:cf:71:9a:bc:02:9f:
46:cd:fa:22:62:a4:5a:54:7e:b8:15:a3:ee:dc:f5:
f5:d0:39:ef:72:48:e1:a7:a5:34:57:c9:81:19:40:
b7:03:ae:06:e8:41:66:74:a2:8d:88:7c:24:7a:c1:
40:7b:53:88:d6:af:2f:2d:77:f3:70:b4:9c:64:dd:
64:45:7a:d6:8c:5d:80:d4:d8:a0:e9:af:eb:db:8e:
23:fd:08:56:94:a6:98:7d:de:31:a6:bb:33:a6:da:
65:0b:ef:67:70:03:84:45:f5:67:46:a8:43:ff:70:
33:49:2d:b6:0d:c3:f3:41:17:2f:03:e3:7f:83:23:
10:49:1e:2e:02:93:4b:2a:5e:0f:c6:c4:79:cd:b9:
39:ec:3f:38:41:8f:45:0e:06:83:ca:14:b9:e9:64:
f7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:50:30:1D:BC:75:E4:16:04:D8:38:40:9D:FB:68:BC:4A:2E:90:1E
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206995.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.75.0/24
191.96.154.0/24
Signature Algorithm: sha256WithRSAEncryption
96:62:5f:be:0c:fb:33:eb:3d:c9:c3:e5:3d:73:b9:36:44:58:
84:95:96:09:75:51:3d:9d:c0:03:45:ad:6b:2a:5c:81:d9:56:
a0:81:10:de:54:03:4b:24:b0:c7:fb:c8:13:96:72:f8:62:e4:
b0:b9:09:2d:37:e3:56:6b:56:f8:4c:2c:8b:ac:17:d0:49:83:
66:fd:d3:7f:88:87:b9:c8:2a:03:c3:83:64:31:bf:ef:e7:1f:
59:35:3d:e0:8d:14:02:c6:f5:59:ed:31:7d:7f:3c:3d:ac:e6:
39:95:ab:58:9a:ad:1e:4b:40:5f:95:91:10:eb:39:f0:1b:a5:
c9:cb:85:8f:51:35:6d:bd:a1:4c:ba:34:26:d6:df:f5:88:eb:
ed:b6:92:75:89:3b:45:0d:b7:4e:63:94:14:fb:c5:a1:f1:0e:
c1:0a:88:59:f1:13:c7:eb:84:e7:23:2f:89:60:16:22:cc:54:
a4:14:47:f7:8c:d6:2a:90:01:76:09:ca:6f:43:5c:b6:9e:b5:
1d:ba:79:6c:01:c0:e1:31:5d:00:53:66:db:40:9c:ec:34:47:
3f:37:8f:32:af:d5:ed:af:8d:24:89:cf:41:3d:04:da:c6:36:
82:4a:74:f0:29:93:51:97:1a:78:b0:39:b8:b6:c7:fe:ed:18:
74:d0:95:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:14 2024 by rpki-client on console-fra.rpki-client.org